package com.example.eurekaserver.config;

/**
 * @ClassName WebSecurityConfig
 * @Description TODO
 * @Author yaozhaobao
 * @Date 2020/7/13 12:32
 * @Version 1.0
 **/

import org.springframework.context.annotation.Configuration;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
import org.springframework.security.config.http.SessionCreationPolicy;

@Configuration
@EnableWebSecurity
public class WebSecurityConfig extends WebSecurityConfigurerAdapter {
    @Override
    protected void configure(HttpSecurity http) throws Exception {
    // Configure HttpSecurity as needed (e.g. enable http basic).
     http.sessionManagement().sessionCreationPolicy(SessionCreationPolicy.NEVER);
     http.csrf().disable();
     //注意：为了可以使用 http://${user}:${password}@${host}:${port}/eureka/ 这种方式登录,所以必须是httpBasic
    // 如果是form方式,不能使用url格式登录
    http.authorizeRequests().anyRequest().authenticated().and().httpBasic();    }
}
